On Tue, 13 Jan 2009, Jonas Sicking wrote: > > It's not just POST that we need to worry about, ideally we should cover > the GET case as well. Or at least it's quite likely that we will want > to.
My understanding was that we didn't want to include Origin in GET requests. In fact HTML5 right now goes out of its way to avoid including it in GET requests. -- Ian Hickson U+1047E )\._.,--....,'``. fL http://ln.hixie.ch/ U+263A /, _.. \ _\ ;`._ ,. Things that are impossible just take longer. `._.-(,_..'--(,_..'`-.;.'